CASE STUDY:
IMPACT ASSESSMENT.
A large water company was implementing a new core system for billing and CRM, and V-LEX was engaged to perform a data privacy impact assessment (DPIA). We performed the DPIA by conducting more than a dozen interviews with members of the implementation team and the wider IT team, and read much of the key project documentation including specifications, security designs, process design, test plans, and so forth.
We produced a report using a RAG status approach to indicate levels of compliance against the GDPR regulations, and made recommendations for risk mitigation.
